Resumen

PORVEN RUBIER, Joelsy  y  MONTESINO PERURENA, Raydel. Framework for centralized security logs management using open source tools. Rev cuba cienc informat [online]. 2015, vol.9, n.3, pp. 18-32. ISSN 2227-1899.

Managing logs in computer systems are a fundamental process to ensure security. The vast majority of software, hardware and network devices possess mechanisms for generating records of state operation. It is very important to know system accesses, or other events that should determine how have performed its operation in a time period. Logs are generated in different formats making it difficult to process. Log management systems require that process and standardize the variety of existing formats. It is also essential to define mechanisms of transport, planning and implementation of storage systems as efficient space utilization and tools for searching and pattern detection. In this paper an analysis of the principal regulations and standards regarding the requirements that must have a centralized management system logs are exposed. A framework and a centralized architecture with the components required are proposed. As a result of the analysis developed a free software tools for the implementation of the proposed architecture are evaluated

Palabras clave : log; management; syslog; security.

        · resumen en Español     · texto en Español     · Español ( pdf )